Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 266

An engineer is working on the implementation of digital certificates for new critical web applications. One of the requirements is that the https connection must be validated and protected against malicious network impersonators. The server will be exposed externally from the DMZ network. Which certificate must be used?

Answer options

• A. X.509
• B. private CA
• C. SSLv3
• D. TLS1.1

Correct answer: A

Explanation

The correct answer is X.509, as it is the standard format for public key certificates used in HTTPS to ensure secure connections. The other options, such as private CA, SSLv3, and TLS1.1, do not directly refer to the type of certificate needed for validating HTTPS connections; instead, they relate to certificate authorities or older protocols that are less secure.